From: Alan T. DeKok <aland@freeradius.org>
Date: Wed, 27 May 2015 14:04:56 +0000 (-0400)
Subject: Use allow_retry for expired passwords, too
X-Git-Tag: release_3_0_9~319
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=47f7bef434ce1927491fe8b7aaa279f05f713115;p=thirdparty%2Ffreeradius-server.git

Use allow_retry for expired passwords, too
---

diff --git a/src/modules/rlm_mschap/rlm_mschap.c b/src/modules/rlm_mschap/rlm_mschap.c
index 9cac6d04e01..6d7be374cbd 100644
--- a/src/modules/rlm_mschap/rlm_mschap.c
+++ b/src/modules/rlm_mschap/rlm_mschap.c
@@ -1888,7 +1888,8 @@ static rlm_rcode_t CC_HINT(nonnull) mod_authenticate(void * instance, REQUEST *r
 				snprintf(newchal + (i * 2), 3, "%02x", fr_rand() & 0xff);
 			}
 
-			snprintf(buffer, sizeof(buffer), "E=648 R=0 C=%s V=3 M=Password Expired", newchal);
+			snprintf(buffer, sizeof(buffer), "E=648 R=%d C=%s V=3 M=Password Expired",
+				 inst->allow_retry, newchal);
 
 			RDEBUG("Password has expired.  The user should retry authentication");
 			mschap_add_reply(request, *response->vp_octets, "MS-CHAP-Error", buffer, strlen(buffer));